Overview

overview

7

Static

static

7

NEAS.73333...e0.exe

windows7-x64

7

NEAS.73333...e0.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.73333022ae39abea77d3904b469bf4e0.exe

  • Size

    334KB

  • Sample

    231022-vxb3lsec6v

  • MD5

    73333022ae39abea77d3904b469bf4e0

  • SHA1

    c946d3ecb5c5036606b25c3549a0af5f005222a1

  • SHA256

    7c2620fac415671e7aa4fb106e748d4c9f3966677fc6ea9fcc7a3ee88384576c

  • SHA512

    8f983393b1fe93e1402cbc9e6a8052b04cb0ac731a86d8ed3e17e80b2fe7176dcdc3deb62da9c4b3f3b33c29b41ed5cb7345e2dfce24147860de1d906ced71e2

  • SSDEEP

    6144:SjluQoSKIo5R4AI5c0bMnrQ8Dkd1noXgW4YRe8Cuec0BSWruLQ3/2VSb/CbdGb9F:SEQoSe7ujorQ82ng9MB8hLmjCwbMbbI

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      NEAS.73333022ae39abea77d3904b469bf4e0.exe

    • Size

      334KB

    • MD5

      73333022ae39abea77d3904b469bf4e0

    • SHA1

      c946d3ecb5c5036606b25c3549a0af5f005222a1

    • SHA256

      7c2620fac415671e7aa4fb106e748d4c9f3966677fc6ea9fcc7a3ee88384576c

    • SHA512

      8f983393b1fe93e1402cbc9e6a8052b04cb0ac731a86d8ed3e17e80b2fe7176dcdc3deb62da9c4b3f3b33c29b41ed5cb7345e2dfce24147860de1d906ced71e2

    • SSDEEP

      6144:SjluQoSKIo5R4AI5c0bMnrQ8Dkd1noXgW4YRe8Cuec0BSWruLQ3/2VSb/CbdGb9F:SEQoSe7ujorQ82ng9MB8hLmjCwbMbbI

    Score
    7/10
    persistencespywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks